cancel
Showing results for 
Search instead for 
Did you mean: 

How is the security of the STM32L5 series maintained during firmware updates? To my knowledge, any data transmissions during this period are done using vulnerable channels.

Roman LUDIN
ST Employee
 
This discussion has been locked for participation. If you have a question, please start a new topic in order to ask your question
1 REPLY 1
Roman LUDIN
ST Employee

The firmware update requires a transmission channel. It can be either local serial link, ethernet, wifi, cellular. The SBSFU solution provided on STM32L5 ensures that code executing this transfer is running on non secure side of the TrustZone. So, any attack, local or remote will not be able to get secrets. Then when update file is transfered, its authenticity is checked before installation making this a secure update. You can have a look to our STM32Trust security MOOC videos for more explanation and also to AN5447 "Overview of Secure Boot and Secure Firmware Update solution on Arm® TrustZone® STM32 microcontrollers"